In a nutshell
Keycloak is an open-source identity and access management service. It helps you add authentication and authorization to your applications and services with minimum effort.
Users authenticate with Keycloak rather than individual applications. Keyloak handles registration / login forms, authentications, and storing of users in a database.
Once users log in to Keycloak, they don’t have to login again to access a different applications that also uses Keycloak.
Keycloak makes it easy to enable user login via social networks such as Google or Facebook.
Keycloak provides an admin web interface where admins can:
- Manage users, including permissions and sessions.
- Create and manage applications and services
- Configure social login
- Configure authorization policies
- Enable / disable various feature
Account management console
Keycloak also provides a place where users can manage their own accounts and do things like:
- Update their profile
- Change passwords
- Setup two-factor authentication
- Manage sessions
- Manage social login
- How does it compare to Auth0 or Firebase?
- What is OpenID Connect or SAML?